CVE-2005-1842

Adobe Version Cue <1.3 - Local Privilege Escalation

Title source: llm

Description

VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, creates temporary log files with predictable names, which allows local users to modify arbitrary files via a symlink attack.

Exploits (1)

exploitdb WORKING POC VERIFIED

by vade79 · perllocalosx

https://www.exploit-db.com/exploits/1185

View Code ZIP pw:eip

References (5)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/14638

[Patch, Vendor Advisory] http://www.adobe.com/support/techdocs/327129.html

[Various Sources] http://www.idefense.com/application/poi/display?id=297&type=vulnerabilities

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1014776

[Patch, Vendor Advisory] http://secunia.com/advisories/16541

Scores

EPSS 0.0072

EPSS Percentile 72.6%

Details

Status published

Products (2)

adobe/version_cue 1.0

adobe/version_cue 1.0.1

Published Aug 24, 2005

Tracked Since Feb 18, 2026